Senior Cybersecurity Engineer
Description:
Job Description
Foxen advances financial wellness through multi-family real estate. Founded in 2018 and headquartered in Columbus, Ohio, we provide we provide a platform of compliance solutions for multifamily property owners, operators and residents.
We’ve built a profitable, growing business in a challenging market. Customers stay and expand with us. Our product portfolio continues to deepen. And we still have significant room to grow.
That kind of momentum requires something specific from the people who work here: high standards, a builder’s mindset and ambition without ego.
Foxen isn’t for everyone. But for the people it’s for, it’s a supportive place to grow.What You’ll Do:
We are seeking a Senior Cybersecurity Engineer to join our team! The ideal person brings deep hands-on expertise in Azure-native security tooling, compliance governance, and cloud security operations. You will own the day-to-day execution and continuous improvement of Foxen’s security posture across a 100% cloud-based Azure environment, working closely with Engineering, DevOps, and IT to embed security throughout the product and infrastructure lifecycle.Key Responsibilities:
Own and continuously improve Foxen’s Azure cloud security architecture, ensuring controls align with business objectives, security best practices, and applicable regulatory requirements.
Conduct threat modeling, security design reviews, and risk assessments for new and existing systems, products, and third-party integrations, including vendor and IAM/CIAM security reviews.
Maintain and enforce security standards, policies, and controls aligned with SOC 2 Type 2, NYDFS 500, GLBA, and CCPA/CPRA requirements; own control evidence, audit documentation, and audit-readiness on an ongoing basis.
Administer and optimize the security tooling stack, including Microsoft Sentinel, Defender for Cloud, Entra ID, and Proofpoint; evaluate and recommend new tools based on fit and organizational need.
Partner with Engineering and DevOps teams to embed security into the SDLC, CI/CD pipelines, and cloud-native infrastructure; provide hands-on guidance on secure design patterns and Azure security configurations.
Define and enforce security guardrails for AI/LLM-enabled tooling, including data classification boundaries, prompt injection risks, and vendor AI usage policies across Foxen’s AI-enabled product and operational environment.
Monitor the Azure environment for threats, vulnerabilities, and anomalies using Sentinel and Defender for Cloud; lead incident response activities and drive remediation to closure.
Support identity and access management governance, including Entra ID configuration, Auth0/CIAM integrations, and privileged access controls.
Coordinate with external auditors, vendors, and partners to maintain audit-readiness and fulfill third-party security review obligations.
Develop and deliver security awareness training and promote a security-conscious culture across Engineering, IT, and the broader organization.
Stay current on threat intelligence, regulatory changes, and emerging Azure and AI security capabilities; apply relevant findings to Foxen’s environment proactively. What You Bring:
5+ years of experience in cybersecurity, with at least 2 years in a hands-on cloud security engineering or security operations role.
Hands-on expertise with Azure-native security services, including Microsoft Sentinel, Defender for Cloud, Entra ID, and email security platforms (Proofpoint or equivalent).
Demonstrated experience with SOC 2, GLBA, NYDFS 500, and CCPA/CPRA compliance frameworks.
Strong background in threat modeling, risk assessment methodologies, and secure design principles.
Experience working with engineering and DevOps teams on cloud-native security patterns, secure SDLC practices, and CI/CD pipeline security integration.
Experience with IAM/CIAM platforms (Entra ID, Auth0, or equivalent) and conducting third-party vendor security reviews.
Excellent communication and interpersonal skills, with the ability to translate complex security concepts for both technical and non-technical stakeholders.
Professional certifications strongly preferred: CISSP, CISM, Azure Security Engineer Associate (AZ-500), or relevant SANS certifications (SEC541, SEC541, SEC488).
High level of integrity and a strong commitment to maintaining the confidentiality of sensitive information. Where You’ll Work:
Located in the heart of the Arena District in Downtown Columbus, Ohio, our corporate office overlooks Huntington Park, home of the Columbus Clippers. With collaboration and team building top of mind, our large open office features multiple areas for group settings, 7+ conference rooms and a company meeting space. You can also look forward to monthly catered lunches, holiday celebrations, bottomless local coffee, and other exciting activities. Off the clock, take advantage of nearby events happening at Nationwide Arena, Kemba Live, and Lower.com field all within walking distance! What We Offer:
As a Senior Cybersecurity Engineer, you will receive competitive pay, bonus opportunities, and a robust benefits package. Our benefits include your choice of three health insurance plans, voluntary dental, vision, short-term disability, long-term disability, life, and AD&D insurance, paid time off, paid holidays, a 401k with 4% company match, and a yearly learning and development stipend. This is a full-time exempt position, reporting to the Senior Director of Information Technology. Occasional travel may be required to attend training and other company functions.
We may use artificial intelligence (AI) tools to support parts of the hiring process, such as reviewing applications, analyzing resumes, or assessing responses. These tools assist our recruitment team but do not replace human judgment. Final hiring decisions are ultimately made by humans. If you would like more information about how your data is processed, please contact us.
Full-time